RSS   Vulnerabilities for 'Quixplorer'   RSS

2020-01-02
 
CVE-2013-1642

CWE-79
 

 
Multiple cross-site scripting (XSS) vulnerabilities in QuiXplorer before 2.5.5 allow remote attackers to inject arbitrary web script or HTML via the (1) dir, (2) item, (3) order, (4) searchitem, (5) selitems[], or (6) srt parameter to index.php or (7) the QUERY_STRING to index.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top